I think that a new cross platform API would be great, but I don't think that fixing this bug should wait for that.  It may be borderline for being changed in a feature release (and definitely should not be changed in a maintenance release), but I think it would be OK.  Mostly likely a program that uses spwd will also be using other root-only functions and already be producing other errors if run as a non-privileged user.  The file-doesn't-exist case is a little more concerning, but my guess is that anyone actually checking for an empty return (as opposed to their program just failing when it gets one) would actually welcome the change, since it will give a more specific error message.

Or, to put it another way, I think the negative impact of this in a feature release will be low enough that we won't take much if any flak for it :)